Troubleshooting EUQ Using NTLM SSO

This procedure explains how to troubleshoot users unable to log on to EUQ management console using NTLM single sign-on (SSO).

Logging on to the EUQ management console using SSO requires that LMCapabilityLevel of Active Directory is configured to support NTLMv1.

Configure the LMCapabilityLevel.
1. Go to Start → Run and type secpol.msc.
2. Go to Security Settings → Local Policies → Security Options → Network security: LAN Manager authentication level → Local Security Setting.
3. Select Send LM & NTLM responses and save.
Enable the LDAP1 or LDAP2 servers and specify them as in use for Active Directory (IP or domain name or FQDN).
Verify that the endpoint operating system supports (and enables) NTLMv1 in LMcapabilityLevel settings.
- Using Firefox: The about:config link is configured to add the NTLM trusted host list.
- Using Internet Explorer: The EUQ management console is added to the internal site list.
- Using Internet Explorer: The Windows integrated authentication setting in Internet Explorer is enabled.

$('#title').html($('meta[name=description]').attr('content'));